Install tripwire to be sure that no files are tampered with that you don't want changed and you should find all the log files you want to check in /var/log. The most likely ones are messages, secure and httpd/error_log. There are many systems to handle log monitoring logwatch and analog may come in handy. You can also secure your system with a firewall or by configuring acls.
-----Original Message----- From: Jianping Zhu [mailto:[EMAIL PROTECTED]] Sent: Friday, February 22, 2002 11:24 AM To: [EMAIL PROTECTED] Subject: which log files should check regularly to ensure security I am a newbie in linux administration . I am managing a lab with a samba server and a web server, which log files should check regularly to ensure security? Thanks -------------------------------- Jianping Zhu Department of Computer Science Univerity of Georgia Athens, GA 30602 -------------------------------- _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
